[Secure-testing-commits] r53039 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Jun 30 13:54:16 UTC 2017
Author: carnil
Date: 2017-06-30 13:54:16 +0000 (Fri, 30 Jun 2017)
New Revision: 53039
Modified:
data/CVE/list
Log:
Add CVE-2017-10687/libsass
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-06-30 13:54:04 UTC (rev 53038)
+++ data/CVE/list 2017-06-30 13:54:16 UTC (rev 53039)
@@ -23,7 +23,8 @@
- tiff3 <removed>
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2712
CVE-2017-10687 (In LibSass 3.4.5, there is a heap-based buffer over-read in the ...)
- TODO: check
+ - libsass <unfixed>
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1466411
CVE-2017-10686 (In Netwide Assembler (NASM) 2.14rc0, there are multiple heap use after ...)
TODO: check
CVE-2017-10685 (In ncurses 6.0, there is a format string vulnerability in the fmt_entry ...)
More information about the Secure-testing-commits
mailing list